CVE-2007-6736

Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.2.0 allow remote authenticated users to access arbitrary files and directories via a .. (dot dot) in a (1) LIST, (2) STOR, or (3) RETR command.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:g.rodola:pyftpdlib:*:*:*:*:*:*:*:*
cpe:2.3:a:g.rodola:pyftpdlib:0.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-10-19 20:00

Updated : 2024-02-04 17:54


NVD link : CVE-2007-6736

Mitre link : CVE-2007-6736

CVE.ORG link : CVE-2007-6736


JSON object : View

Products Affected

g.rodola

  • pyftpdlib
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')